Solved

Exchange Server 2010 and Forefront w/ EDGE

Posted on 2010-08-27
3
543 Views
Last Modified: 2012-05-10
We will be migrating from SBS2k3 R2 to a separate Exchange 2010 server, plus separate domain controller running WINDOWS SERVER 2008 R2 and adding FOREFRONT on another server. Do we need to run EDGE to make all of this happen?
If so, would I just need to purchase another EXCHANGE license to run the EDGE SERVER. Also, were would I run the EDGE SERVER(what box).

Any links to info on this would also be helpful.

Thanks for the input...
0
Comment
Question by:markwel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 250 total points
ID: 33542635
No - deploying the edge service on a separate box is optional. However, it IS required if you want FTMG to use its ability to control the email policy as seen within the FTMG gui.
0
 
LVL 2

Expert Comment

by:panman3
ID: 33557295
You could install a separate EDGE server in your DMZ. With Forefront security for Exchange on the EDGE, your mails are scanned in the DMZ before they reach the app-server(s) were the Exchange database resides => so you have an extra layer of protection.

If you happen to already have a Forefront TMG server in place then the Forefront scanner is already integrated into it. You just need the appropriate license to activate it on the TMG server; your mails are then scanned on the firewall itself before they go to DMZ or to internal LAN.

It is certainly neacessary to have additional licenses for each server running an Exchange role. The cost is therefore higher if you separate roles, but the performance, availability and security are increased.

Regards,
Geert
0
 

Author Closing Comment

by:markwel
ID: 33834259
Best Answer
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
how to add IIS SMTP to handle application/Scanner relays into office 365.

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question